Browse Source

Pass --anonymous-auth to apiserver

Fixes #732
pull/734/head
Alexander Block 8 years ago
parent
commit
444b1dafdc
2 changed files with 8 additions and 0 deletions
  1. 5
      inventory/group_vars/all.yml
  2. 3
      roles/kubernetes/master/templates/manifests/kube-apiserver.manifest.j2

5
inventory/group_vars/all.yml

@ -21,6 +21,11 @@ kube_cert_group: kube-cert
# Cluster Loglevel configuration
kube_log_level: 2
# Kubernetes 1.5 added a new flag to the apiserver to disable anonymous auth. In previos versions, anonymous auth was
# not implemented. As the new flag defaults to true, we have to explicetely disable it. Change this line if you want the
# 1.5 default behavior. The flag is actually only added if the used kubernetes version is >= 1.5
kube_api_anonymous_auth: false
# Users to create for basic auth in Kubernetes API via HTTP
kube_api_pwd: "changeme"
kube_users:

3
roles/kubernetes/master/templates/manifests/kube-apiserver.manifest.j2

@ -48,6 +48,9 @@ spec:
- --cloud-config={{ kube_config_dir }}/cloud_config
{% elif cloud_provider is defined and cloud_provider == "aws" %}
- --cloud-provider={{ cloud_provider }}
{% endif %}
{% if kube_api_anonymous_auth is defined and kube_version | version_compare('v1.5', '>=') %}
- --anonymous-auth={{ kube_api_anonymous_auth }}
{% endif %}
livenessProbe:
httpGet:

Loading…
Cancel
Save